Luigi Auriemma discovered that PeerCast, a P2P audio and video streamingserver, is vulnerable to a heap overflow in the HTTP server code, whichallows remote attackers to cause a denial of service and possibly executearbitrary code via a long SOURCE request.

For the stable distribution (etch), this problem has been fixed inversion 0.1217.toots.20060314-1etch0.

The old stable distribution (sarge) does not contain peercast.

For the unstable distribution (sid), this problem has been fixed inversion 0.1218+svn20071220+2.